I think we would need the auth spec to be widely implemented before that's possible
Discussion
Auth is coming to Nostream. Is it supported on Damus?
Not yet but i want to do that soon
How does the zap counter work? Can't it be manipulated? Can't anyone just broadcast that they've sent a zap to someone without sending it? Or it cryptographically verified somehow?
What do you think about attribute-based encryption? It would force encryption/decryption on the client, rather than an auth fence on the relay. Maybe for private groups instead of the whole relay though.